thomhurst · thomhurst · Jan 1, 2026 · Jan 1, 2026 · Jan 1, 2026 · Copilot
diff --git a/src/ModularPipelines/Context/ICertificates.cs b/src/ModularPipelines/Context/ICertificates.cs
@@ -2,13 +2,41 @@
 
 namespace ModularPipelines.Context;
 
+/// <summary>
+/// Provides functionality for retrieving X.509 certificates from the certificate store.
+/// </summary>
 public interface ICertificates
 {
-    public X509Certificate2? GetCertificateBySubject(StoreLocation storeLocation, string subject);
+    /// <summary>
+    /// Gets a certificate by its subject name.
+    /// </summary>
+    /// <param name="storeLocation">The store location to search.</param>
+    /// <param name="subject">The subject name to search for.</param>
+    /// <returns>The matching certificate, or null if not found.</returns>
+    X509Certificate2? GetCertificateBySubject(StoreLocation storeLocation, string subject);
 
-    public X509Certificate2? GetCertificateByThumbprint(StoreLocation storeLocation, string thumbprint);
+    /// <summary>
+    /// Gets a certificate by its thumbprint.
+    /// </summary>
+    /// <param name="storeLocation">The store location to search.</param>
+    /// <param name="thumbprint">The thumbprint to search for.</param>
+    /// <returns>The matching certificate, or null if not found.</returns>
+    X509Certificate2? GetCertificateByThumbprint(StoreLocation storeLocation, string thumbprint);
 
-    public X509Certificate2? GetCertificateBySerialNumber(StoreLocation storeLocation, string serialNumber);
+    /// <summary>
+    /// Gets a certificate by its serial number.
+    /// </summary>
+    /// <param name="storeLocation">The store location to search.</param>
+    /// <param name="serialNumber">The serial number to search for.</param>
+    /// <returns>The matching certificate, or null if not found.</returns>
+    X509Certificate2? GetCertificateBySerialNumber(StoreLocation storeLocation, string serialNumber);
 
+    /// <summary>
+    /// Gets a certificate using a custom find type and value.
+    /// </summary>
+    /// <param name="storeLocation">The store location to search.</param>
+    /// <param name="findType">The type of search to perform.</param>
+    /// <param name="findValue">The value to search for.</param>
+    /// <returns>The matching certificate, or null if not found.</returns>
     X509Certificate2? GetCertificateBy(StoreLocation storeLocation, X509FindType findType, string findValue);
 }
diff --git a/src/ModularPipelines/Http/ResponseLoggingHttpHandler.cs b/src/ModularPipelines/Http/ResponseLoggingHttpHandler.cs
@@ -18,6 +18,11 @@ protected override async Task<HttpResponseMessage> SendAsync(HttpRequestMessage
     {
         var response = await base.SendAsync(request, cancellationToken).ConfigureAwait(false);
 
+        // Buffer the response content so it can be read multiple times.
+        // Without this, reading the body for logging consumes the stream,
+        // making it unreadable by subsequent code. See issue #1610.
+        await response.Content.LoadIntoBufferAsync().ConfigureAwait(false);
-        await response.Content.LoadIntoBufferAsync().ConfigureAwait(false);
+        if (response.Content is not null)
+        {
+            await response.Content.LoadIntoBufferAsync().ConfigureAwait(false);
+        }
-        await response.Content.LoadIntoBufferAsync().ConfigureAwait(false);
+        if (response.Content is not null)
+        {
+            await response.Content.LoadIntoBufferAsync().ConfigureAwait(false);
+        }
+
         await _httpLogger.PrintResponse(response, _logger).ConfigureAwait(false);
 
         return response;